13,420
edits
Changes
no edit summary
::# '''New incoming <u>connections</u>''' (what you normally think of as '''<u>inbound traffic</u>'''): the web server receives a '''new incoming connection'''.
::# '''Incoming <u>data</u> that client receives as a response from the server''': the web page that the server sent back in the diagram above.
::::The analogy would be a telephone call:<ul><li>A '''NEW''' packet is like the phone ringin</li><li>An '''ESTABLISHED''' packet is the connection and the packet says, "hello".</li><li>A '''RELATED''' packet would be the data related in the phone call (eg. relation to other packets like an ftp transfer or ssh connection)</li></ul>
::::We normally don't want to do anything special for the response. It is safe to assume that '''a connection that was allowed to be established should be allowed to receive a response'''. This is accomplished with the following '''INPUT chain rule''' that should be there by default on your machines:<br>